The company states that it shall adopt policies in compliance with relevant laws and regulations to thoroughly protect and control personal data, however, it is unclear whether the policy is applicable for all stakeholders, i.e., employees and customers, at a minimum. Also, it has a publicly available policy statement committing it to protecting personal data, however, the scope of the policy is limited to website users only. Also, no evidence found that the company has a publicly available global privacy statement in relation to the collection, sharing, and access to personal data of all stakeholders, i.e., employees and customers, at a minimum.